7 best practices for working with cybersecurity startups

[InfoSec News <alerts () infosecnews org>]

https://www.csoonline.com/article/3311017/security/7-best-practices-for-working-with-cybersecurity-startups.html

By Maria Korolov
Contributing Writer
CSO
OCT 9, 2018

Cybersecurity startups, not weighed down by legacy platforms, can be more 
nimble and innovative than their more established competitors, and can 
often offer more personalized service at a more attractive price. Atiq 
Raza has seen this from both sides. Today, he's the CEO of Silicon Valley 
cybersecurity startup Virsec Systems, but he's also worked for large 
companies, including a stint as the president of AMD.

"I have managed major organizations with hundreds of key vendors," he 
says. "For some functions you want conservative, well established vendors 
with a long track record of doing one thing very well. But for many 
functions, including security, you also need the latest, most effective 
and most innovative solutions – typically from younger companies."

"There are inherent risks to working with smaller innovators, but for the 
right pieces, smart organizations recognize the benefits," he says.

That includes flexibility, speed, creativity and ability to innovate, he 
says. "By not being locked into a fixed mindset or methodology, and not 
being tied down by existing technology, they have the freedom to be 
disruptive, challenge assumptions, and create the first generation of 
game-changing technology. This is why startups routinely beat established 
companies in driving new markets.”

The risks of using startups is significant, however. The startup might go 
out of business or be bought and their technology shut down. Worse, due to 
inexperience and lack of adequate controls, a startup might make mistakes 
that could compromise their customers' security instead of improving it.

[...]

--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_